This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4227 Views
  • 0 replies
  • 0 Likes

Policy Based Forwarding applications

I realize that PBF application based routing is limited to a subset of applications supported.We're specifically looking to use PBF for Outlook-Web-Online and it's not in the list but many other things are, like MS-OCS-* and SMTP, etc...Do we know why some applications are listed and why?Is it possible to make a feature request to support this a...

kk555 by L0 Member
  • 4202 Views
  • 2 replies
  • 0 Likes

PA-200 configuration for low bandwidth site

Hi there,We have a PA-200 recently deployed at a low bandwidth field site. Monitoring the traffic shows the majority of traffic is from the PA-200 itself, checking for updates, Panorama, Wildfire, etc. Is there a way to configure a PA-200 to only perform this on a scheduled basis? Right now it's transferring about 400Mb per day, which puts it wa...

rmilman by Not applicable
  • 4028 Views
  • 5 replies
  • 0 Likes

Address Object Cleanup

Does anybody have any suggestions on how to easily cleanup unused address objects. I recently migrated from Cisco ASA, and I'd like to cleanup some of the old garage objects that I brought over that are no longer being used.Thanks!

bbilut by L3 Networker
  • 4193 Views
  • 3 replies
  • 0 Likes

Resolved! Possible to block specific files by hash?

If we are given a document which shows specific files used by bad actors in our sector, is it possible to have the PAN alert/block on these files? I have the SHA256 and MD5 hashes.

SDorsey by L4 Transporter
  • 11887 Views
  • 6 replies
  • 0 Likes

GlobalProtect - Disk encryption

Hi, I already searched about this topic but I did not find anything useful.I want to force our clients to have disk encryption enabled when they want to access our Network via GlobalProtect. I am able to check if the Encryption Software is installed (File Vault in this case) but I want to check if the Disk is encrypted too. I know I could do tha...

SSL Certificates CA Verisign

Hello,we have import the CA Certificate from Verisign and want to activate the Antivirus function (policies).But only the "Trusted Root CA"is available in the "Certificate Information"the option "Forward Trust Certificate" is gray and not available.But that the function what we need.We will check upload traffic to the servers in the trust lan o...

Integrated User-ID Agent

Has anyone started using this new feature in PAN-OS 6.x?I have 20+ firewalls and I'm really not looking forward to deploying/managing 20+ Kiwi Syslog servers. In our environment, we collect SNMP traps from our WLCs and send the parsed data to the UID Agent Server. It works, but way too much to administer and troubleshoot. Have any of you dumped ...

SSL decryption for public use ?

We provide internet access for public use (wifi hotspot). For better control and visibility, I would like to introduce SSL decryption (we already use it for our internal users). But there is no way I can deploy the certificate to those users (who I don't know and don't control their devices).Is there any way I can enhance control and visibility ...

dieter_b by L4 Transporter
  • 4234 Views
  • 5 replies
  • 0 Likes

Global Protect time out - automatic reconnect attempt?

We're experiencing this with Windows and OSX clients.The user connects on Monday, tunnel times out after 24 hours.User doesn't disconnect but lets the connection time out naturally. Immediately after time out, they receive an attempt to re-auth even though they had not instigated a new connection.This has resulted in some locked tokens and gen...

kk555 by L0 Member
  • 14261 Views
  • 15 replies
  • 0 Likes

Upgrade to PAN-OS 6.0.4 - a virtual wire did not come up

Hello,I have a PAN-OS 6.0.2 box that I upgraded to PAN-OS 6.0.4. I have two vwires: one on interfaces 1/2 and another on 5/6. The vwire on 5/6 did not come up. The interfaces are "up" (green) as far as the web gui is concerned. The "Monitor" shows traffic being "allowed" per the appropriate rules. However, traffic is not flowing.I have not t...

cstech by L2 Linker
  • 5724 Views
  • 6 replies
  • 0 Likes

User-IDs Agent : Error : ldap_parse_page_control

I install User-ID Agent Version 6.0.2-3 on a Windows 2008R2.I use the LDAP proxy on the firewall to read the AD.I have the following message in the logs [Error 727] ldap_parse_page_control (cn = ...... (null)) return (93): Specified control was not found in messageis that it poses a problem to read the groups from AD?

yobitz2 by L0 Member
  • 2370 Views
  • 1 replies
  • 0 Likes

Interface goes Down when speed set to 1000!

Hi,I was getting complains for slow download speed, so I tried to change the speed setting on interface from auto to 1000, but the interface went down.Link status: Runtime link speed/duplex/state: unknown/unknown/down Configured link speed/duplex/state: 1000/auto/up when I set it back to auto, it goes half duplex and speed 100Link status: R...

Besfort by L2 Linker
  • 11930 Views
  • 9 replies
  • 0 Likes

OpenSSL TLS Malformed Heartbeat Request Found - Heartbleed(36397)

HelloI have a PA-2050 with PanOS 5.0.8 and I get this message today"THREAT,vulnerability,1,2014/08/31 16:32:08,216.75.XX.XX,213.0.XX.XX,216.75.XX.XX,10.1.5.92,Access webprv,,,ssl,vsys1,Untrust,DMZ,ethernet1/3,ethernet1/1.938,ACUNTIA,2014/08/31 16:32:13,207017,1,41570,443,41570,443,0x400000,tcp,reset-server,"",OpenSSL TLS Malformed Heartbeat Requ...

SOC_CSG by L4 Transporter
  • 5077 Views
  • 1 replies
  • 0 Likes
  • 24355 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks